Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 18.04 LTS USN-6518-1 critical: AFFLIB DoS threat detected

ubuntu
Calendar Grey November 28, 2023
Dist Ubuntu Esm H88
Ubuntu Security Bulletin USN-6520-3: AFFLIB could face potential vulnerabilities when handling certain files, which may lead to Denial of Service incidents.
AFFLIB could be made to crash if it opened a specially crafted file.

Summary

AFFLIB could be made to crash if it opened a specially crafted

file.

Software Description:

- afflib: Advanced Forensics Format Library

Details:

Luis Rocha discovered that AFFLIB incorrectly handled certain input files.

If a user or automated system were tricked into processing a specially

crafted AFF image file, a remote attacker could possibly use this issue

to cause a denial of service via application crash. (CVE-2018-8050)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS (Available with Ubuntu Pro):
   afflib-tools                    3.7.16-2ubuntu0.1~esm1
   libafflib0v5                    3.7.16-2ubuntu0.1~esm1

Ubuntu 16.04 LTS (Available with Ubuntu Pro):
   afflib-tools                    3.7.7-3ubuntu0.1~esm1
   libafflib0v5                    3.7.7-3ubuntu0.1~esm1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6518-1

CVE-2018-8050

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-6518-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here